Vulnerability Details : CVE-2012-3119
Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.0.20 allows remote authenticated users to affect confidentiality via unknown vectors related to Candidate Gateway.
Products affected by CVE-2012-3119
- cpe:2.3:a:oracle:peoplesoft_products:9.0.20:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-3119
0.37%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 73 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2012-3119
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:N/A:N |
8.0
|
2.9
|
NIST |
References for CVE-2012-3119
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/77028
Oracle PeopleSoft Enterprise HRMS Candidate Gateway information disclosure CVE-2012-3119 Vulnerability Report
-
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
Oracle Critical Patch Update - July 2012Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
mandriva.com
-
http://www.securitytracker.com/id?1027265
Oracle PeopleSoft Products Lets Remote Authenticated Users Partially Access Data, Modify Data, and Deny Service - SecurityTracker
-
http://www.securityfocus.com/bid/54523
Oracle PeopleSoft Enterprise HRMS CVE-2012-3119 Remote Security Vulnerability
Jump to